Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
File: iDHWIdGS-S2wk9kzCSweI2tNSXs.mft (raw, json)
Hash identifier: +8rUTnuhxwgqZt7TImiosPsyCybTxE6jkSc/K+EF99s=
Subject key identifier: 1B:F4:61:58:F8:2C:93:FB:A5:D8:AC:85:88:69:F0:B1:02:A1:58:28
Authority key identifier: 88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B
Certificate issuer: /CN=8831d621d192f92db093d933092c1e236b4d497b
Certificate serial: 019D38664C0A388EEC913BE0E0EED1533E3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 07:02:01 +0000
Manifest this update: Sun 29 Mar 2026 07:02:01 +0000
Manifest next update: Mon 30 Mar 2026 07:02:01 +0000
Files and hashes: 1: DpXD_qmAIFL_EpLe0GJAEUHvYxs.roa (hash: H5hh0chuQLZ9k4SOj22nhApIqV8qceTKzoblxLgW6NE=)
2: iDHWIdGS-S2wk9kzCSweI2tNSXs.crl (hash: mmB0fiCOcgH0jG83S/7/HgvDcqPdQzlmK3re5lzEuE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:4c:0a:38:8e:ec:91:3b:e0:e0:ee:d1:53:3e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8831d621d192f92db093d933092c1e236b4d497b
Validity
Not Before: Mar 29 07:02:01 2026 GMT
Not After : Mar 30 07:02:01 2026 GMT
Subject: CN=1bf46158f82c93fba5d8ac858869f0b102a15828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:79:3a:2c:89:84:d5:a6:3d:b8:2d:3a:07:37:
c4:d3:ec:52:5c:66:48:df:15:6f:68:b5:3f:f5:df:
fc:b8:df:fe:07:a7:71:9e:a8:a8:58:27:98:73:10:
91:51:ed:41:c2:46:a0:3f:99:23:f8:4b:e8:8d:10:
54:e9:50:fc:17:2e:60:a2:42:b9:a4:02:3a:2e:4d:
3b:f0:15:f5:9a:38:5c:55:d0:fb:07:1c:2b:f3:07:
e1:44:e2:c3:6d:8c:dc:3b:e1:28:df:07:41:80:ee:
58:fe:6d:d6:cc:be:3c:0d:6c:ca:bb:bc:0d:c7:4f:
4a:fb:57:3c:47:de:14:7d:2e:27:31:88:43:fc:d1:
17:fb:7b:4d:08:b8:54:7a:4a:d5:84:5e:b0:d6:31:
aa:f6:4a:d5:76:40:bc:be:e9:1d:12:b9:98:d4:59:
fe:25:f8:cb:7e:56:40:ab:79:14:40:98:d2:9f:d2:
0f:b8:c7:10:65:df:ed:7f:cd:d1:14:63:74:30:ef:
0f:ac:ea:3f:8e:2c:66:ff:b3:ed:3e:52:5b:81:00:
49:07:ac:3a:45:f4:9c:3b:c8:08:34:48:78:e0:a7:
bd:e6:80:c4:c7:e4:ff:36:ae:4b:f5:69:72:93:7a:
11:49:fe:a3:9d:07:4a:ba:a8:ec:b2:bf:f4:5d:37:
80:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F4:61:58:F8:2C:93:FB:A5:D8:AC:85:88:69:F0:B1:02:A1:58:28
X509v3 Authority Key Identifier:
keyid:88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:d2:3b:c4:62:97:b5:34:32:76:f5:e3:f3:5d:2a:79:32:37:
ed:d0:fa:6e:02:04:be:76:4d:11:9d:85:9b:b4:46:30:ec:26:
65:53:2f:fd:88:87:8a:30:1d:b9:af:e3:4e:fa:16:73:9b:fc:
c0:81:f6:43:c7:39:d5:5e:34:f8:1f:04:0a:df:49:a9:cc:3a:
3d:00:b3:ae:f3:8c:a3:12:e6:5e:94:b3:78:35:a7:c3:c2:59:
33:a6:6f:27:96:04:5a:4f:b1:8c:13:91:5a:93:01:83:07:9d:
7e:ad:b0:41:5d:b1:3a:a1:d8:a9:e8:b6:c5:70:04:5f:18:bb:
7a:12:30:e8:4c:5a:28:39:5a:e2:2a:72:1f:a1:71:0f:7f:98:
37:11:2a:1a:14:9a:b9:37:10:95:ce:01:86:53:65:e0:b0:cf:
de:52:1a:8c:55:63:00:74:2b:85:88:bb:d2:f9:2e:fa:90:1a:
15:7f:6f:fc:2a:bc:82:bf:bd:6b:63:71:39:a1:3d:e3:75:30:
71:13:fb:47:71:37:3e:03:10:0f:90:d0:24:ab:da:3d:f3:03:
f2:af:0b:c8:af:e9:be:11:7d:25:1d:01:e1:d1:f9:60:b2:eb:
0d:6e:8d:18:20:a0:49:26:61:26:10:1c:eb:78:07:24:3f:94:
75:20:46:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:53 2026 by rpki-client